Help RSS API Feed Maltego Contact                        

Domain > webhttps.websecexp.com

This indicator is referenced in AlienVault OTX pulse ""

Is this malicious?
Most users have voted this as MALICIOUS

Reports
http://pages.arbornetworks.com/rs/082-KNA-087/imag...    
http://pages.arbornetworks.com/rs/082-KNA-087/imag...    
http://researchcenter.paloaltonetworks.com/2015/06...    
https://asert.arbornetworks.com/defending-the-whit...    
https://asert.arbornetworks.com/uncovering-the-sev...    
https://asert.arbornetworks.com/wp-content/uploads...    
https://citizenlab.org/2015/10/targeted-attacks-ng...    
https://otx.alienvault.com/pulse/557b04afb45ff5256...    
https://otx.alienvault.com/pulse/55e4c89c67db8c7bb...    
https://otx.alienvault.com/pulse/55e557fa4637f21c5...    
https://otx.alienvault.com/pulse/5621208f4637f21ec...    
https://otx.alienvault.com/pulse/56939fda67db8c057...    

Files that talk to webhttps.websecexp.com
MD5A/V
64590646ab74325ee2ad480ef5a18307[WS.Reputation.1] [Zegost.AXLE] [Backdoor.Win32.Zegost.dgac] [Trojan.Win32.Zegost.dphhvo] [Backdoor.Win32.A.Zegost.248135[h]] [Trojan.DownLoader12.43930] [BDS/Zegost.248135] [Backdoor:Win32/Plugx.L] [Trj/CI.A] [Trojan.Win32.Korplug] [W32/Zegost.DGAC!tr.bdr] [Backdoor.Win32.Zegost.dgac]
f8a370de9233d27fed89ce7a7f7a03d1[Backdoor.Zegost.r5] [Trojan.Win32.Zegost.dphhvo] [WS.Reputation.1] [Backdoor.Win32.Zegost.dgab] [Trojan.Korplug!xHzDeeJebUs] [Win32.Backdoor.Zegost.Efap] [Trojan.DownLoader12.43930] [Trojan.Korplug.Win32.307] [Troj/Plugx-AP] [W32/Backdoor.DJGT-0626] [BDS/Zegost.326841] [Backdoor:Win32/Plugx.L] [Backdoor.Win32.A.Zegost.326841[h]] [Backdoor.Win32.Zegost.dgab] [Trojan.Win32.Korplug] [W32/Zegost.DGAC!tr.bdr] [Trj/CI.A]

Whois
PropertyValue
NameServer NS48.DOMAINCONTROL.COM
Created 2013-04-01 00:00:00
Changed 2013-04-01 00:00:00
Expires 2018-04-01 00:00:00
Registrar GODADDY.COM, LLC